RtgAttestationEngine
sealed class RtgAttestationEngine : AndroidAttestationEngine<ParsedAttestationRecord, AuthorizationList, X509Certificate> (source)
Android attestation engine as reliable as a radioisotope thermoelectric generator (RTG). Uses the legacy attestation parser from Google, patched for resilience
Inheritors
Types
Link copied to clipboard
class Hardware(attestationConfiguration: AndroidAttestationConfiguration, verifyChallenge: (expected: ByteArray, actual: ByteArray) -> Boolean) : RtgAttestationEngine
Link copied to clipboard
class Software(attestationConfiguration: AndroidAttestationConfiguration, verifyChallenge: (expected: ByteArray, actual: ByteArray) -> Boolean) : RtgAttestationEngine
Functions
Link copied to clipboard
fun AuthorizationList.verifyAndroidVersionFromAuthList(versionOverride: Int?, patchLevel: PatchLevel?, verificationDate: Instant)
Link copied to clipboard
suspend fun verifyAttestation(certificates: List<X509Certificate>, verificationDate: Instant, expectedChallenge: ByteArray): ParsedAttestationRecord
Verifies Android Key attestation Implements in accordance with https://developer.android.com/training/articles/security-key-attestation. Checks are performed according to the properties set in the attestationConfiguration.